Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
File:                     vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json)
Hash identifier:          8WrgSDUYnO8ks83ScX1sZyIZb7B4lv/2B+9EffCHhUA=
Subject key identifier:   46:92:14:3F:55:A9:84:B2:B2:5B:44:34:23:2F:65:C7:6D:99:77:49
Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
Certificate issuer:       /CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Certificate serial:       01901E58EC3B2DA93AB4C42EF5C672AF1B4C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
Manifest number:          03ED
Signing time:             Sun 16 Jun 2024 00:01:02 +0000
Manifest this update:     Sun 16 Jun 2024 00:01:02 +0000
Manifest next update:     Mon 17 Jun 2024 00:01:02 +0000
Files and hashes:         1: lvr0cznDn9OLv8_GSLRIXI64Wxo.roa (hash: zu8w05vyZSovZLtJMQNXGH94uFEApQY9SVsNop1J/y8=)
                          2: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: Wrwy2wxza27/RWhl8W78K3Bo6DBF/mIsiAnmIvegLSs=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 19:09:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:58:ec:3b:2d:a9:3a:b4:c4:2e:f5:c6:72:af:1b:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd
        Validity
            Not Before: Jun 16 00:01:02 2024 GMT
            Not After : Jun 17 00:01:02 2024 GMT
        Subject: CN=4692143f55a984b2b25b4434232f65c76d997749
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:7a:98:e9:41:39:6a:99:6b:e4:08:ee:a9:38:
                    c1:80:59:cb:ab:2e:88:d4:6c:7d:7b:8a:0a:b8:7b:
                    52:55:f8:1d:b9:e3:c3:a9:8f:22:a5:e9:fa:b9:ab:
                    53:e7:23:ec:99:07:1e:a9:7a:da:96:81:70:7b:8a:
                    f4:47:53:65:fb:7a:d8:68:18:16:d3:58:95:3e:75:
                    19:18:83:57:b4:46:b7:11:4e:f2:96:79:74:2a:68:
                    9a:ea:e9:48:58:d4:d3:7f:80:54:ad:ac:8d:7e:4b:
                    ee:d4:cf:14:7a:fa:65:1a:3d:c9:f3:56:08:2d:5e:
                    32:c2:41:39:fe:ba:96:a3:c4:b6:17:87:32:26:91:
                    50:0b:65:94:2d:32:58:e1:b4:7a:fa:92:b3:af:5f:
                    61:18:22:36:d0:0d:15:89:08:8e:d7:2f:0b:9e:84:
                    b1:03:66:b8:77:d4:32:bb:98:03:df:b0:98:de:3f:
                    24:9a:fa:95:17:e1:9a:9c:a4:62:c3:70:1d:02:3c:
                    ed:8d:28:4f:f5:e9:c6:98:2d:96:b0:c9:71:af:89:
                    ca:0d:75:9f:87:3b:8e:b6:ac:f4:79:d0:b6:88:e9:
                    a8:8e:4b:b2:e4:c7:4b:92:31:7e:b0:f0:56:f3:50:
                    d8:9d:3b:c1:38:61:7c:a2:29:d2:09:b5:28:9c:6b:
                    e5:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:92:14:3F:55:A9:84:B2:B2:5B:44:34:23:2F:65:C7:6D:99:77:49
            X509v3 Authority Key Identifier:
                keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:21:26:03:65:b9:66:8b:57:03:c5:5e:ad:d5:06:e8:b7:23:
         1a:e3:96:d3:33:1c:49:a5:a8:bc:ee:9a:1f:cc:12:31:9e:e1:
         a4:c4:1c:d0:4f:a6:c8:1b:95:93:23:b3:2c:cb:c9:45:3c:b3:
         a9:9b:e8:ee:de:eb:0b:79:d3:80:ef:50:42:76:16:e2:50:7a:
         e8:e7:bc:2d:53:0b:03:86:0d:5b:a3:c9:9b:80:9d:f2:1c:ae:
         ae:9a:73:c4:75:69:db:b3:21:66:c1:68:21:4b:d9:f1:b8:65:
         ea:12:4e:20:cb:f4:83:78:c1:87:ff:6d:1d:a3:f8:7f:59:44:
         f3:13:38:b7:96:ad:a5:d0:28:4d:da:52:57:02:1a:0d:ba:cc:
         11:b3:98:a2:1a:dd:19:86:a0:15:48:97:e7:18:12:1c:b8:ca:
         b1:82:3b:0d:c7:a7:e9:df:53:51:64:08:20:30:de:71:fe:3a:
         2a:9e:fe:e5:08:32:1b:db:71:de:77:2c:5f:16:da:8c:f2:d3:
         5e:d8:36:45:10:cf:e8:76:3f:1f:5c:16:4a:16:22:3f:73:c7:
         9e:b6:15:55:ae:c1:72:80:3b:79:84:9f:33:c0:e0:88:c9:47:
         af:77:f7:12:a0:c9:33:03:56:c7:ad:0b:94:32:7b:3b:0f:44:
         69:d8:92:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 01:02:32 2024 by rpki-client on console-fra.rpki-client.org